$ rpki-client -vvf repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/32372e3131322e36352e302f32342d3234203d3e203436303633.roa File: 32372e3131322e36352e302f32342d3234203d3e203436303633.roa (raw, json) Hash identifier: Pkdf7SsfkpbiJuE6kdJ40FkL/ss5mA3yBuB75QVgOO8= Subject key identifier: 69:5A:7C:90:37:05:62:4A:F3:85:63:9D:DC:A9:DA:71:08:9D:54:4D Certificate issuer: /CN=D2A6ABCA1EF89725109CBEA5D42E683C95925312 Certificate serial: 32E44EBE881DD979AF0CFD43A6E5C1426AEBE4D9 Authority key identifier: D2:A6:AB:CA:1E:F8:97:25:10:9C:BE:A5:D4:2E:68:3C:95:92:53:12 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2A6ABCA1EF89725109CBEA5D42E683C95925312.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/32372e3131322e36352e302f32342d3234203d3e203436303633.roa Signing time: Fri 05 Sep 2025 13:00:01 +0000 ROA not before: Fri 05 Sep 2025 12:55:01 +0000 ROA not after: Fri 04 Sep 2026 13:00:01 +0000 asID: 46063 IP address blocks: 27.112.65.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/D2A6ABCA1EF89725109CBEA5D42E683C95925312.crl rsync://repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/D2A6ABCA1EF89725109CBEA5D42E683C95925312.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2A6ABCA1EF89725109CBEA5D42E683C95925312.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 18:57:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:e4:4e:be:88:1d:d9:79:af:0c:fd:43:a6:e5:c1:42:6a:eb:e4:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D2A6ABCA1EF89725109CBEA5D42E683C95925312 Validity Not Before: Sep 5 12:55:01 2025 GMT Not After : Sep 4 13:00:01 2026 GMT Subject: CN=695A7C903705624AF385639DDCA9DA71089D544D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:91:ab:d3:f0:35:17:65:92:5f:68:8a:5a:50: 50:58:37:2c:2f:92:49:4f:39:27:f9:37:4d:a8:29: 6b:ac:05:a2:7e:ac:bc:d3:7a:c7:0b:3d:22:80:0d: ff:0f:1b:aa:c1:6b:e1:5f:31:c1:e3:0a:b1:74:ab: 0c:1f:b6:4a:35:e8:d9:8b:17:b1:15:8f:41:f1:d7: c4:61:60:cd:e7:02:a1:62:b8:2a:df:b9:79:83:a9: 24:c7:71:5e:42:af:6a:b8:a4:2d:a9:ee:5a:ab:35: 1c:b6:d3:e9:bc:62:c5:77:e3:c5:e4:06:db:7d:50: a0:5d:6e:9f:4f:ca:01:95:01:fa:d3:79:d0:97:c5: e0:fe:bd:ac:77:71:74:4c:68:e2:4e:0f:79:5f:e4: 60:4a:e9:91:66:83:50:31:58:07:05:d5:72:94:a9: 45:c7:29:11:66:47:81:15:60:9b:ee:34:97:be:34: 0b:a4:24:76:e7:de:3e:11:39:e6:dd:33:2f:11:43: b7:df:9e:64:bc:cb:05:3f:f1:e8:02:0a:cd:ce:3f: 81:26:ec:cf:16:f2:42:9a:0f:49:da:60:59:71:df: ee:27:9a:20:28:11:03:ae:4a:19:95:18:9f:d0:20: f3:89:67:ad:31:ee:ba:81:9d:be:18:c4:bc:79:14: 10:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:5A:7C:90:37:05:62:4A:F3:85:63:9D:DC:A9:DA:71:08:9D:54:4D X509v3 Authority Key Identifier: keyid:D2:A6:AB:CA:1E:F8:97:25:10:9C:BE:A5:D4:2E:68:3C:95:92:53:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/D2A6ABCA1EF89725109CBEA5D42E683C95925312.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2A6ABCA1EF89725109CBEA5D42E683C95925312.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/32372e3131322e36352e302f32342d3234203d3e203436303633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.112.65.0/24 Signature Algorithm: sha256WithRSAEncryption 69:82:1d:16:23:e0:b0:54:11:5a:e7:b5:bb:70:6a:f5:4f:60: 5b:dc:83:1c:66:41:05:ba:78:a0:b3:48:c2:7f:cd:d0:76:ba: c5:69:3f:0d:cd:67:23:2a:8c:e3:d6:ce:be:f3:e0:33:cd:ec: ec:de:d9:f5:e3:5b:af:e9:a6:28:99:9c:9f:1e:28:69:2b:25: 3c:5f:f3:f1:4a:14:96:ca:a0:59:72:81:aa:f1:fb:3e:c3:44: 45:01:f8:6e:81:86:1f:4d:a6:fb:60:05:a8:ae:0b:30:da:5f: 7b:5f:bd:3a:33:70:43:98:4b:49:06:b4:c0:39:57:78:8d:d3: cc:c1:55:cf:90:03:19:50:05:50:37:24:64:ac:ee:e3:38:99: 91:38:93:ad:7e:66:1d:58:68:85:6c:42:5d:9e:ea:53:e6:d9: 7b:0c:c9:34:19:aa:e1:57:be:ed:25:30:cd:05:01:2c:22:9c: e8:0e:21:7b:7c:2c:5e:71:56:81:f7:f5:0a:af:91:d9:be:89: 00:71:21:f0:f8:7c:cf:2f:10:de:ac:c9:40:ad:c4:47:4f:fb: 5d:8c:77:34:35:69:52:db:56:d4:cf:02:28:bf:cc:1e:48:66: b1:c7:45:80:73:9c:8a:31:42:6a:00:03:3d:19:51:60:50:38: e2:8e:47:73 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUMuROvogd2XmvDP1DpuXBQmrr5NkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDJBNkFCQ0ExRUY4OTcyNTEwOUNCRUE1RDQyRTY4M0M5 NTkyNTMxMjAeFw0yNTA5MDUxMjU1MDFaFw0yNjA5MDQxMzAwMDFaMDMxMTAvBgNV BAMTKDY5NUE3QzkwMzcwNTYyNEFGMzg1NjM5RERDQTlEQTcxMDg5RDU0NEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3kavT8DUXZZJfaIpaUFBYNywv kklPOSf5N02oKWusBaJ+rLzTescLPSKADf8PG6rBa+FfMcHjCrF0qwwftko16NmL F7EVj0Hx18RhYM3nAqFiuCrfuXmDqSTHcV5Cr2q4pC2p7lqrNRy20+m8YsV348Xk Btt9UKBdbp9PygGVAfrTedCXxeD+vax3cXRMaOJOD3lf5GBK6ZFmg1AxWAcF1XKU qUXHKRFmR4EVYJvuNJe+NAukJHbn3j4ROebdMy8RQ7ffnmS8ywU/8egCCs3OP4Em 7M8W8kKaD0naYFlx3+4nmiAoEQOuShmVGJ/QIPOJZ60x7rqBnb4YxLx5FBAFAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUaVp8kDcFYkrzhWOd3KnacQidVE0wHwYDVR0j BBgwFoAU0qaryh74lyUQnL6l1C5oPJWSUxIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YWQxZTE2YS0wYTRkLTQ0YjEtOTg0NS05YzBjZDdhNmYzOGYvMC9EMkE2QUJDQTFF Rjg5NzI1MTA5Q0JFQTVENDJFNjgzQzk1OTI1MzEyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDJBNkFCQ0ExRUY4OTcyNTEwOUNCRUE1RDQyRTY4M0M5NTky NTMxMi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VhZDFlMTZhLTBhNGQtNDRiMS05 ODQ1LTljMGNkN2E2ZjM4Zi8wLzMyMzcyZTMxMzEzMjJlMzYzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM0MzYzMDM2MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAbcEEwDQYJKoZIhvcN AQELBQADggEBAGmCHRYj4LBUEVrntbtwavVPYFvcgxxmQQW6eKCzSMJ/zdB2usVp Pw3NZyMqjOPWzr7z4DPN7Oze2fXjW6/ppiiZnJ8eKGkrJTxf8/FKFJbKoFlygarx +z7DREUB+G6Bhh9NpvtgBaiuCzDaX3tfvTozcEOYS0kGtMA5V3iN08zBVc+QAxlQ BVA3JGSs7uM4mZE4k61+Zh1YaIVsQl2e6lPm2XsMyTQZquFXvu0lMM0FASwinOgO IXt8LF5xVoH39Qqvkdm+iQBxIfD4fM8vEN6syUCtxEdP+12MdzQ1aVLbVtTPAii/ zB5IZrHHRYBznIoxQmoAAz0ZUWBQOOKOR3M= -----END CERTIFICATE-----Generated at Mon Oct 20 15:50:42 2025 by rpki-client